[67339] in North American Network Operators' Group
Re: question on ptr rr
daemon@ATHENA.MIT.EDU (Chris Adams)
Sun Feb 8 17:00:24 2004
Date: Sun, 8 Feb 2004 15:59:43 -0600
From: Chris Adams <cmadams@hiwaay.net>
To: nanog@merit.edu
Mail-Followup-To: Chris Adams <cmadams@hiwaay.net>, nanog@merit.edu
In-Reply-To: <E1Apw3U-000HPw-Nh@trinity.supernews.net>
Errors-To: owner-nanog-outgoing@merit.edu
Once upon a time, Andrew - Supernews <andrew@supernews.net> said:
> If you're going to get picky about HELO names, then it's better to
> require that the HELO has an A record pointing to the connecting IP,
> rather than look at PTR.
That isn't necessarily a good test; for example, we've got a couple of
servers in a cluster. One IP pointed at the cluster is mail.hiwaay.net,
and that is what is used in HELO/EHLO when making outbound connections,
but the connections don't come from that IP. They come from the cluster
member's IP so that when we get a complaint with sending IP, we don't
have to look through the logs for the whole cluster to find the
offender.
--
Chris Adams <cmadams@hiwaay.net>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.
